Information Security Analyst I-PAM/BeyondTrust PowerBroker for Unix/Linux

You Lead the Way. We’ve Got Your Back.

At American Express, we know that with the right backing, people and businesses have the power to progress in incredible ways. Whether we’re supporting our customers’ financial confidence to move ahead, taking commerce to new heights, or encouraging people to explore the world, our colleagues are constantly redefining what’s possible —and we’re proud to back each other every step of the way. When you join #TeamAmex, you become part of a diverse community of over 60,000 colleagues, all with a common goal to deliver an exceptional customer experience every day. We back our colleagues with the support they need to thrive, professionally and personally. That’s why we have Amex Flex, our enterprise working model that provides greater flexibility to colleagues while ensuring we preserve the important aspects of our unique in-person culture. Depending on role and business needs, colleagues will either work onsite, in a hybrid model (combination of in-office and virtual days) or fully virtually. 

From building next-generation apps and microservices in Kotlin to using AI to help protect our customers from fraud, you could be doing transformational work that brings our iconic, global brand into the future. As a part of our tech team, we could work together to bring ground-breaking and diverse ideas to life that power the digital systems, services, products and platforms that millions of customers around the world depend on. If you love to work with APIs, contribute to open source, or use the latest technologies, we’ll support you with an open environment and learning culture to grow your career.
 
 Focus:

Responsible for assisting with activities designed to systematically handle information security, such as security investigations, intelligence, assurance, and awareness, and/or other project oversight, including developing standard methodologies for information security standards and handling IT controls and compliance with regulatory guidance. 

Organizational Context:

Works with technology and business partners across business functions/processes to ensure alignment, understanding and ongoing communication on security controls, compliance and information security risk management. Works individually and with teams on both structured and unstructured assignments.

How will you make an impact in this role?

As part of the PAM operations team, you will be required to:

• Ensure availability of PAM services as per stated SLAs
• Responsible for responding to service interruptions and outages and restoration of service as per committed service agreements.
• Administer & manage appointed PAM solutions and all underlying components including but not limited to, credential vaulting & management, policy based fine grained entitlement management, session brokering & management and integrations with Enterprise Data Warehouse, SIEM & system monitoring tools.
• Handle new integration/entitlement policy update requests
• Handle Incident, change & problem management within the PAM service span.
• Participate in all key activities related to service availability & continuity including DR exercises
• Ensure PAM service meets all service parameters and KPIs.
• Regular reporting of PAM service SLAs & KPIs and adherence to associated targets.
• Closely collaborate with PAM architecture & engineering team on enhancements, new service functionalities & components.
• Lead the operationalization of new service offerings, components & integrations.
• Ensure that the PAM service, solutions & implementations are in complete adherence to AXP & regulatory controls and audit requirements (PCI DSS, SOX etc)
• Work closely with other associated functional areas both within and outside IAM organization to ensure seamless PAM service delivery.
• Propose, lead & drive initiatives that positively contributes to the overall IAM service portfolio & roadmap.

• BE/MCA/M Tech/B Tech graduate with 5-9 years of overall IT experience.
• Minimum 3-4 years of experience in Unix administration (RHEL SuSE, Ubuntu) & Shell scripting (Korn/Bash)
• Minimum 3 years of hands-on experience in administration & operation of large-scale implementation of industry-leading enterprise PAM solutions (preferably Beyond Trust PowerBroker)
• Deep competence in RHEL administration and server support and exposure to other flavors.
• Experience in advanced level Shell scripting (Korn/Bash)
• Deep understanding of person & non-person identities & their management in Unix platforms.
• Good understanding of Directory structure, attribute/schema and PAM integration with Active Directory, LDAP based directory services
• Exposure to enterprise service operations tools like ServiceNow, DynaTrace, Puppet etc.
• Hands-on experience in handling service operations, incident & problem management in large-scale & geographically disparate environments.
• Good overall understanding of enterprise identity management, access management & MFA services besides PAM.
• Good understanding of regulatory standards including PCI DSS, SOX, NIST etc. (preferred)
• Experience in BFSI & Retail industry (preferred)
• Other key competences:
  • Agile Practices & SDLC Methodologies and Practices
  • System/Platform Domain Knowledge including Systems Integration
  • Application Support
  • Requirements Gathering and analysis
  • Excellent Communication skills
  • Analytical Thinking
  • Problem Solving
  • Awareness about Technology & Industry Trends
  • Adaptability, collaboration & Teamwork
  • Continuous Improvement & Learning Agility

American Express is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability status, age, or any other status protected by law.  

Offer of employment with American Express is conditioned upon the successful completion of a background verification check, subject to applicable laws and regulations.